Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-13 | CVE-2021-34943 | Out-of-bounds Read vulnerability in Bentley View and Microstation This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. | 3.3 |
| 2022-01-13 | CVE-2021-34944 | Out-of-bounds Read vulnerability in Bentley View and Microstation This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. | 3.3 |
| 2022-01-13 | CVE-2021-45059 | Use After Free vulnerability in Adobe Indesign Adobe InDesign version 16.4 (and earlier) is affected by a use-after-free vulnerability in the processing of a JPEG2000 file that could lead to disclosure of sensitive memory. | 3.3 |
| 2022-01-12 | CVE-2022-23114 | Insufficiently Protected Credentials vulnerability in Jenkins Publish Over SSH Jenkins Publish Over SSH Plugin 1.22 and earlier stores password unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system. | 3.3 |
| 2022-01-12 | CVE-2021-28376 | Path Traversal vulnerability in Chronoengine Chronoforums 7.0.7 ChronoForms 7.0.7 allows fname Directory Traversal to read arbitrary files. | 2.7 |
| 2022-01-11 | CVE-2021-43566 | Race Condition vulnerability in Samba All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area of the server file system not exported under the share definition. | 2.5 |
| 2022-01-10 | CVE-2022-0158 | vim is vulnerable to Heap-based Buffer Overflow | 3.3 |
| 2022-01-10 | CVE-2022-22266 | Improper Privilege Management vulnerability in Google Android 10.0/11.0/9.0 (Applicable to China models only) Unprotected WifiEvaluationService in TencentWifiSecurity application prior to SMR Jan-2022 Release 1 allows untrusted applications to get WiFi information without proper permission. | 3.3 |
| 2022-01-10 | CVE-2022-22267 | Files or Directories Accessible to External Parties vulnerability in Google Android Implicit Intent hijacking vulnerability in ActivityMetricsLogger prior to SMR Jan-2022 Release 1 allows attackers to get running application information. | 3.3 |
| 2022-01-10 | CVE-2022-22269 | Files or Directories Accessible to External Parties vulnerability in Google Android 10.0/11.0/9.0 Keeping sensitive data in unprotected BluetoothSettingsProvider prior to SMR Jan-2022 Release 1 allows untrusted applications to get a local Bluetooth MAC address. | 3.3 |